Getting Data In

Community Activity

Working with CSV I have CSV like this- PPAGE_ID1 PPAGE_ID2 PPAGE_ID3 PPAGE_ID4 PPAGE_ID5 PPAGE_ID6 1-Jan 123 123 ... by reverse Contributor in Getting Data In 01-31-2020 0 5	0	5
Regex for Line Break props.conf Hello Splunkers, Any Regex geniuses that can help line break the below logs. Ideally remove the text in the red an... by nathanluke86 Communicator in Getting Data In 01-31-2020 0 9	0	9
help with the dashboard time calculation needed Hello, I have relatively easy issue I am struggling with. I would like to calculate the time difference in seconds b... by damucka Builder in Getting Data In 01-31-2020 0 2	0	2
How to write dynamic rest api script in Shell?? Hi All, I was writing one script in shell for getting data though rest api . Below is the connect of the script `... by pal_sumit1 Path Finder in Getting Data In 01-31-2020 0 1	0	1
How do I group unstructured events based on errorcode that they contain in body? I have some base splunk query which gives me list of events which has body mentioned below - event 1. {"Errors":{"Er... by dhirajnangar Engager in Getting Data In 01-31-2020 0 2	0	2
Inconsistent indexing time on CSV monitor We have been using daily CSV exports from our "X" monitoring servers that we then display on our performance board ea... by swamysanjanaput Explorer in Getting Data In 01-31-2020 0 5	0	5
Sourcetype renaming not taking Following the documentation for sourcetype renaming, I still fail to get it working. I have added an entry in Source... by srich Explorer in Getting Data In 01-30-2020 0 5	0	5
how to delete duplicate events I messed up my production server - deleted by mistake some of the internal splunk indexes instead of deleting them ... by gooza Communicator in Getting Data In 01-30-2020 4 4	4	4
API json preview field As seen in https://docs.splunk.com/Documentation/Splunk/7.2.3/RESTUM/RESTusing#Example_B:_JSON_response_format_exampl... by grittonc Contributor in Getting Data In 01-30-2020 0 2	0	2
One record, two values per field? We've been acquiring data for some time now via manual imports with CSV files. We're finishing up the process of auto... by aaron_sakovich Path Finder in Getting Data In 01-30-2020 0 11	0	11
error after stopping and connecting to instance in aws Hi Everyone, I spinned up a new windows instance in aws, then i installed splunk application in that server. Then i ... by kancharlarajesh New Member in Getting Data In 01-30-2020 0 1	0	1
Universal Forwarder 8.0 upgrade path from 6.x We have a bunch of older 6.x universal forwarders that will be incompatible with an 8.0 Enterprise Splunk instance. ... by smiejascott New Member in Getting Data In 01-30-2020 0 4	0	4
How to filter our dashboard by each host or including all hosts? Hi, I'm trying to filter our dashboard by each host or including all hosts. We have many field(chart) in a dashboar... by summerura Explorer in Getting Data In 01-30-2020 0 5	0	5
How do you filter data from a log and send them to 2 splunk instances while discarding the rest? I'm trying to filter data from a log and send them to 2 splunk instances while discarding the rest. I've tried a lit... by melvinfuglem Explorer in Getting Data In 01-30-2020 0 4	0	4
TCP requirement for syslog transfer Syslogs are sent on UDP port 514 towards Syslog-ng But we have experienced if tcp for port 514 is not working/not op... by jibin1988 Path Finder in Getting Data In 01-30-2020 0 11	0	11
HTTP Event Collector returns Bad Request - what is wrong with my event? While posting a request to Splunk via HEC, I get the response as {"text":"No data","code":5} and when I enable versio... by jagadeeshm Contributor in Getting Data In 01-29-2020 1 11	1	11
Monitor logs on Indexers and forward to another indexer cluster In my environment, we send everything to our indexer cluster and use data cloning using _TCP_ROUTING on the universal... by mccartneyc Path Finder in Getting Data In 01-29-2020 0 1	0	1
Original Timestamp Value/Format Hello, I'm looking for a way to capture the original timestamp value/format from various logs. Here are some of the f... by genesiusj Builder in Getting Data In 01-29-2020 0 0	0	0
splunk-kubernetes-logging in Kubernetes cluster getting error_class=Net::OpenTimeout error="execution expired" I am trying to setup splunk-kubernetes-logging. I have my daemonset running on my worker nodes, but fluentd is failin... by solguin New Member in Getting Data In 01-29-2020 0 1	0	1
default.meta [views\setup] Hello guys,Does anyone know what views\setup found in default.meta means? Also if Search & Reporting app default.meta... by splunkreal Influencer in Getting Data In 01-29-2020 0 4	0	4
splunk forwarder upgrade Hi All i have a requirement to upgrade splunk forwarder from 7.1 to 7.3.3, I will use sccm to upgrade to 7.3.3, exper... by risingflight143 Explorer in Getting Data In 01-29-2020 0 2	0	2
Splunk HF send only auditd, syslog, linux_secure to 3rd party syslog I am having trouble wrapping my head around how to configure a HF to forward the sourcetypes of syslog and auditd to ... by ZimmermanC1 Explorer in Getting Data In 01-29-2020 0 5	0	5
Why am I getting "ERROR UiPythonFallback - Appserver at http://127.0.0.1:8065 never started up!" on my Splunk 6.2.1 indexers? I am new to Splunk, and noticed the web interface for my Indexers is offline. After reviewing the logs I found the b... by richardwii Engager in Getting Data In 01-29-2020 2 3	2	3
How to split String sentence into one row? Hello, I have a fields in my index named MESSAGE. [BBB] ProcessGenererIdentifiantLMKRImpl/genererIdentifiantLMKR -... by tahasefiani Explorer in Getting Data In 01-29-2020 0 3	0	3
WinEventlog Input for [WinEventLog://Microsoft-Windows-Shell-Core/AppDefaults] Hi, I try to monitor Microsoft-Windows-Shell-Core/AppDefaults directory. I tried adding it to Splunk_TA_windows by... by dkeck Influencer in Getting Data In 01-29-2020 0 3	0	3